MGASA-2020-0321

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2020-15917

Published: 18 Aug 2020, 17:41

Last modified:16 Apr 2026, 04:25

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

18 Aug 2020, 17:41

Published

Vulnerability first disclosed

16 Apr 2026, 04:25

Last Modified

Vulnerability information updated

Description

Updated claws-mail packages fix security vulnerability common/session.c in Claws Mail before 3.17.6 has a protocol violation because suffix data after STARTTLS is mishandled (CVE-2020-15917).

Affected Systems

mageia•claws-mail
< 3.17.6-1.mga7

References (3)

https://advisories.mageia.org/MGASA-2020-0321.html
https://bugs.mageia.org/show_bug.cgi?id=27040
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/G7UX65342HRVDQML4G4GEVEUB764EUM5/